History
- Priority
- must
- Dec 2019
- Removed
- Security controls 0624 and 0625 were removed as the change management process, including the updating of risk assessments, is covered by security control 1211 within the change management section of the Guidelines for System Management.
- Nov 2019
- All changes to a gateway architecture are considered prior to implementation, documented and assessed in accordance with the organisation’s change management process and supporting change management procedures.
- Aug 2019
- All changes to a gateway architecture are considered prior to implementation, documented and assessed in accordance with the organisation’s change management process and supporting change management procedures.
- Security control 0625 was modified to include a reference an organisation’s change management process and procedures.
- Jul 2019
- All changes to a gateway architecture are considered prior to implementation, documented and assessed in accordance with the organisation’s change management process.
- 2015
- Agencies must document and assess all changes to gateway architecture in accordance withthe agency’s change management process.
- 2010
- Agencies must limit changes to gateways after installation.